Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Synchronization questions

jriker1
Champ in-the-making
Champ in-the-making

‎06-24-2009 07:26 PM

I have Synchronization kind of working in 3.2.  I say kind of because if I hard code a name in for the CN it works fine.  Problem and questions:

1. I have fields in AD ADAM for most of the fields in the user form.  Is there a way to add additional attributes to pull from AD/ADAM if I have them?  An example would be the location field in Alfresco I can map to a field in Adam.

2. Is there a way to limit the system to only pull users in a certain group?  Keep in mind I'm in ADAM so only have two branches, Users and Groups.  I have 70k people in my company so do not want to pull all users.

3. If I try pulling everyone, it pulls 1000 users only and eventually errors.  After that I get error 500's in the browser after trying to login with access denied.  It seems to ignore the default admin user in the ldap properties file.  I read of an issue with pulling more than 1000 records and it was fixed in 3.2 but perhaps not.  I know we can only pull 1000 records so not sure if this is a client limitation or a tool one.  After the 1000 I just get a lengthy error in the alfresco log file.

Input would be appreciated.

Thanks.

JR
Labels:
0 Kudos
26 REPLIES 26

mrogers
Star Contributor
Star Contributor

‎06-25-2009 06:58 PM

As Dave says above, the old way of configuring alfresco has been "phased out".

In 3.2 custom-repository.properties no longer exists.  

Dave has updated the Wiki with details already and I see more and more details being added each day.
0 Kudos

jriker1
Champ in-the-making
Champ in-the-making

‎06-25-2009 07:06 PM

As Dave says above, the old way of configuring alfresco has been "phased out".

In 3.2 custom-repository.properties no longer exists.  

Dave has updated the Wiki with details already and I see more and more details being added each day.

Thanks, noticed that the custom-hibernate-dialect.properties file is also missing.  Hopefully I can find the necessary details on the Wiki to configure this setting what I set before in these custom files.

Thanks.

JR
0 Kudos

mrogers
Star Contributor
Star Contributor

‎06-25-2009 07:17 PM

yes that file has gone too.   To be replaced by alfresco-global.properties

http://wiki.alfresco.com/wiki/Database_Configuration
0 Kudos

jriker1
Champ in-the-making
Champ in-the-making

‎06-25-2009 07:45 PM

yes that file has gone too.   To be replaced by alfresco-global.properties

http://wiki.alfresco.com/wiki/Database_Configuration

Thanks a bunch.  This is exactly what I needed for the DB stuff.  I also used to edit the custom-hibernate-dialect.properties and uncomment the MySQL dialect line

hibernate.dialect=org.hibernate.dialect.MySQLInnoDBDialect

Is this required anymore and exist elsewhere?

Thanks.

JR

Edit:  I see it now in the Wiki.  Although it doesn't talk about MySQL for some reason which is odd since the download says only use with MySQL for now, Looks like I just add the above dialect into the same file.
0 Kudos

jriker1
Champ in-the-making
Champ in-the-making

‎06-25-2009 08:59 PM

I was able to get things working with the alfresco-global.properties file, but only in it's original location under webapps/alfresco/WEB-INF/classes.  Putting the file under shared/classes/alfresco/extension doesn't seem to be read in.  I have installed Tomcat 6, configured the shared.loader path but it's not reading in.  Am I missing something?  Also I saw the extensions folder with extension/messages/web-extension folders in it.  Are those files really needed?  Assume some class path in SUSE is missing or something.

JR
0 Kudos

fo1337
Champ in-the-making
Champ in-the-making

‎06-26-2009 01:54 PM

I was able to get things working with the alfresco-global.properties file, but only in it's original location under webapps/alfresco/WEB-INF/classes.  Putting the file under shared/classes/alfresco/extension doesn't seem to be read in.  I have installed Tomcat 6, configured the shared.loader path but it's not reading in.  Am I missing something?  Also I saw the extensions folder with extension/messages/web-extension folders in it.  Are those files really needed?  Assume some class path in SUSE is missing or something.

JR

Actually I've just started a thread with the same question. http://forums.alfresco.com/en/viewtopic.php?f=9&t=20056. I have no idea why my alfresco-global.properties doesn't get read, and I use Tomcat 5… Help!!!
0 Kudos

_sax
Champ in-the-making
Champ in-the-making

‎08-25-2009 06:31 AM

To get back to the original topic I'm a bit puzzled if it is possible to sync from several ldap branches (ou).

I use 3.2CE and it works perfectly for one branch
ldap.synchronization.userSearchBase=ou=\_Departments,dc=intranet,dc=ads-users,dc=staff

Now I have another branch of users, that would like to use Alfresco, too.
ldap.synchronization.userSearchBase=ou=\_Global,dc=central,dc=staff

Is it possible, to group them in one line?
Or is this functionality not yet there, as being related to https://issues.alfresco.com/jira/browse/ETHREEOH-1806
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎08-25-2009 08:19 AM

jriker1: At no point did we say that alfresco-global.properties belongs under alfresco/extension. You put it directly under $TOMCAT_HOME/shared/classes.
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎08-25-2009 08:28 AM

_sax: If your sync can't be expressed as a single query under a single search base, then you could set up a chain in alfresco-global.properties. E.g.:

authentication.chain=ldap1:ldap-ad,ldap2:ldap-ad

… and configure different queries and search bases for each. You set ldap.authentication.active=false for the instance that you don't want to handle authentication.

To configure independent properties for ldap1 and ldap2, you will need to use the extension classpath mechanism described here

http://wiki.alfresco.com/wiki/Alfresco_Subsystems#Properties

and you will need a 3.3 nightly build, as it was broken in the v3.2 community release.
0 Kudos

_sax
Champ in-the-making
Champ in-the-making

‎08-25-2009 09:58 AM

Thank you.

When looking at http://forums.alfresco.com/en/viewtopic.php?f=9&t=16051&p=52680 it seems to provide another path to solve this. But how would such a query translate from CDATA to the format in alfresco-global.properties?
(& (ou=\_Departments,dc=intranet,dc=ads-users,dc=staff)(ou=\_Global,dc=central,dc=staff)) seems too simple.

If I'd use your approach with a "new" subsystem, I would set up a folder alfresco/subsystems/Authentication/ldap-ad/SomeAdditionalStaff to synchronize a specific branch? In it I would place the corresponding ldap-ad-authentication.properties pointing to the additional users and "register" it within my authentication chain. Are there additional steps to announce it to the system?
But this would take time until the next release to be ready for actual usage in productive systems.

Finally, theres this thread http://forums.alfresco.com/en/viewtopic.php?f=9&t=19239&p=63326 basically adding a trigger. Besides being a not-so-clean approach, would that even work with 3.2?

Thanks for your appreciated help so far.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC